Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0F18A450E73411EEA407F2B2775412E6.roa
File: 0F18A450E73411EEA407F2B2775412E6.roa (raw, json)
Hash identifier: lMTE+UP2w3//lVQKZMeAcB4f/sKPQ4/FAGrmzCGa2GU=
Subject key identifier: EB:41:C4:07:5E:BF:24:0A:05:70:B7:14:25:AB:A9:CA:81:7C:E6:F0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A354
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0F18A450E73411EEA407F2B2775412E6.roa
Signing time: Thu 21 Mar 2024 03:35:27 +0000
ROA not before: Thu 21 Mar 2024 03:35:24 +0000
ROA not after: Tue 23 Apr 2024 03:35:24 +0000
asID: 44559
IP address blocks: 154.207.15.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41812 (0xa354)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 03:35:24 2024 GMT
Not After : Apr 23 03:35:24 2024 GMT
Subject: CN=65fbaaff-2657
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:87:e3:59:1d:80:48:87:71:75:5e:22:10:79:
72:8b:fe:f3:37:c0:0f:3e:f4:54:e2:86:ef:8a:0f:
6f:c0:62:55:e4:a5:32:f5:7d:b2:c7:ea:43:ea:8f:
98:19:92:b8:a3:14:36:09:13:e8:ea:a9:c7:a2:3d:
62:90:88:86:09:e8:ae:d6:6a:16:35:73:f7:cf:b9:
dc:28:4f:72:bd:50:9d:69:ec:7f:60:d2:45:b1:a7:
cf:93:8e:5d:3b:9f:a5:a6:c9:a9:d8:1d:0a:10:b7:
d6:34:37:51:40:2e:2a:34:a6:7f:06:57:78:b0:a6:
0e:dc:f8:c4:f4:0e:35:f4:0d:d2:64:d7:41:ba:33:
b7:9f:28:49:c9:7e:84:40:1e:d0:49:e4:8f:32:fa:
0f:ac:ba:e9:32:48:24:0a:ac:ac:a4:87:7b:30:c0:
b3:64:5c:03:b6:74:a8:60:af:b8:54:29:f8:11:53:
50:3f:c7:6e:c7:0b:30:fe:2d:48:87:c5:62:f0:f4:
34:e7:5b:9e:88:7a:ce:1e:f6:a8:ef:4a:bc:0e:24:
f0:1d:c5:22:8b:80:68:db:1a:f8:c8:0b:6e:8e:4d:
bf:2f:e1:d9:51:0f:7e:97:78:ad:a0:5c:58:ef:4b:
8e:cf:d1:c8:59:85:93:9c:4b:31:34:f4:5b:71:94:
2b:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:41:C4:07:5E:BF:24:0A:05:70:B7:14:25:AB:A9:CA:81:7C:E6:F0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0F18A450E73411EEA407F2B2775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.15.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:7f:29:33:ed:99:28:41:74:59:b2:fe:a1:69:1f:85:e5:85:
28:53:24:3b:7a:11:11:88:bf:96:e5:9b:43:fc:b4:dc:31:80:
f6:89:f3:f9:b5:e0:c3:c2:82:78:04:e4:04:b6:69:30:3e:78:
36:cb:37:1b:78:f2:b9:5c:63:08:c0:2d:ca:46:31:f3:31:41:
c2:9b:a9:77:fd:7b:d8:10:7f:0a:07:e0:b9:dd:a5:56:cb:4b:
ff:20:9d:4e:c3:01:7d:57:20:61:b1:1c:78:71:76:10:14:86:
d8:59:b5:6c:24:ef:37:d9:ba:51:7c:8a:c2:57:20:a2:db:20:
ce:25:d3:ea:86:2c:52:8c:16:94:c8:4b:34:71:76:d5:2f:69:
d9:dd:16:13:a9:c5:46:13:88:e0:3d:25:2e:e6:8c:ae:39:dc:
59:dc:d3:74:54:e5:ea:2a:50:fa:76:34:93:43:a6:0f:7c:da:
a6:a2:7b:f6:0f:36:d8:b2:85:0e:35:e4:31:4b:fb:da:a3:3c:
fe:92:12:6a:94:db:6d:19:83:dc:1f:e3:47:45:ad:67:33:02:
dd:2f:29:82:14:0e:2f:27:c9:aa:0e:4d:d1:1e:5c:06:17:c8:
c4:35:68:79:e1:95:8e:35:14:59:c5:ac:08:3c:b7:f9:52:97:
50:12:bb:53
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKNUMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzIxMDMzNTI0WhcNMjQwNDIzMDMzNTI0WjAYMRYw
FAYDVQQDEw02NWZiYWFmZi0yNjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAzofjWR2ASIdxdV4iEHlyi/7zN8APPvRU4obvig9vwGJV5KUy9X2yx+pD
6o+YGZK4oxQ2CRPo6qnHoj1ikIiGCeiu1moWNXP3z7ncKE9yvVCdaex/YNJFsafP
k45dO5+lpsmp2B0KELfWNDdRQC4qNKZ/Bld4sKYO3PjE9A419A3SZNdBujO3nyhJ
yX6EQB7QSeSPMvoPrLrpMkgkCqyspId7MMCzZFwDtnSoYK+4VCn4EVNQP8duxwsw
/i1Ih8Vi8PQ051ueiHrOHvao70q8DiTwHcUii4Bo2xr4yAtujk2/L+HZUQ9+l3it
oFxY70uOz9HIWYWTnEsxNPRbcZQrFQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFOtB
xAdevyQKBXC3FCWrqcqBfObwMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8wRjE4QTQ1MEU3MzQxMUVFQTQwN0YyQjI3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAms8PMA0GCSqGSIb3DQEB
CwUAA4IBAQBbfykz7ZkoQXRZsv6haR+F5YUoUyQ7ehERiL+W5ZtD/LTcMYD2ifP5
teDDwoJ4BOQEtmkwPng2yzcbePK5XGMIwC3KRjHzMUHCm6l3/XvYEH8KB+C53aVW
y0v/IJ1OwwF9VyBhsRx4cXYQFIbYWbVsJO832bpRfIrCVyCi2yDOJdPqhixSjBaU
yEs0cXbVL2nZ3RYTqcVGE4jgPSUu5oyuOdxZ3NN0VOXqKlD6djSTQ6YPfNqmonv2
DzbYsoUONeQxS/vaozz+khJqlNttGYPcH+NHRa1nMwLdLymCFA4vJ8mqDk3RHlwG
F8jENWh54ZWONRRZxawIPLf5UpdQErtT
-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:13 2024 by rpki-client on console-ams.rpki-client.org